Developer Tools
AT Creator
This tool allows to get Authorization Tickets without registering stations. It is made for developers who have not fully implemented the PKI protocol yet.
ATs generated with AT Creator are not secure and shall not be used beyond testing purposes.
Request inputs
By default, all fields are filled in. Make sure the signer (AA) selected in the proper one. It is possible to go back to the default values by clicking on the Reset attributes button.
| Input Field | Description |
|---|---|
Alias |
Will be used as the root name of the generated files (default value is OfflineAT) |
Signer |
Authorization Authority that will sign the AT certificates |
Start date & time |
Start date and time of ATs validity period (default value is Current Date, 24:00) /!\ there is no control against the AA validity period |
Validity duration |
This value is the validity period duration in which AT certificates are valid. Units can be Milliseconds, Seconds, Minutes, Hours, SixtyHours, Years (default value is 72 Hours) /!\ there is no control against the AA validity period |
Assurance & Confidence (optional) |
Pending EU harmonization (default value is 0-0) |
App Permissions |
Permissions wanted in the AT certificates. PSID (dec), SSP (hexa), can be set as Opaque (default permissions are the selected AA permissions) /!\ there is no control against the AA permissions |
Regions (optional) |
Validity region of the AT certificates as defined in ETSI TS 103 097. (default value is No region) |
Verification key (optional) |
The private key can be generated by the user and provided to get the corresponding AT certificate. If not, the application generates and provides a verification key for each AT certificate (default curve used is NIST 256) |
Encryption key (optional) |
The encryption key can be generated by the user and provided to get the corresponding AT certificate (by default no encryption key is provided) |
Number of ATs |
Up to 20 AT certificates can be generated at once (default value is 1) |
Request outputs
When hitting the Download button, a .zip file (named after the Alias along with the current date and time) is downloaded. The file contains one folder per AT certificate, each containing:
- The AT certificate : "Alias-AT#.crt"
- The verification public key : "Alias-AT#-verif.pub" (binary file under RFC 5480 SubjectPublicKeyInfo format)
- The verification private key : "Alias-AT#-verif.pkcs8" (binary file under RFC 5208 PrivateKeyInfo format)
And if requested:
- The encryption public key : "Alias-AT#-enc.pub" (binary file under RFC 5480 SubjectPublicKeyInfo format)
- The encryption private key : "Alias-AT#-enc.pkcs8" (binary file under RFC 5208 PrivateKeyInfo format)